Analyst I, Security - IR

Concentra is recognized as the nations leading occupational health care company.

With more than 40 years of experience Concentra is dedicated to our mission to improve the health of Americas workforce one patient at a time. With a wide range of services and proactive approaches to care Concentra colleagues provide exceptional service to employers and exceptional care to their employees.

The Analyst I Security - IR (Incident Response) plays a crucial role in safeguarding an organizations IT infrastructure. They are responsible for investigating and responding to security incidents working closely with the security team to identify analyze and mitigate the impact of security breaches malware infections and other cybersecurity threats. By leveraging their technical expertise and problem-solving skills and will help organizations maintain a robust security posture and minimize the damage aused by security incidents. This position will be expected to effectively interact with senior business leaders. The Analyst I Security - IR is the first line of defense against cyber threats. They continuously monitor and analyze security logs alerts and events to detect potential security incidents. When an incident occurs they spring into action collaborating with the security team to execute incident response plans and procedures. This includes performing root cause analysis containing the incident eradicating the threat and recovering affected systems. The position will also recommend and implement security improvements based on the lessons learned from past incidents ensuring that the organization is better prepared to handle future threats.

The position is also challenged with ensuring that state-of-the art security techniques are employed to maintain the highest level of security for all platforms and applications maintained by the company while at the same time not compromising system efficiency. In addition the Security Analyst must resolve any security incident in a timely manner. Responsible for identifying opportunities for process and technology enhancements and communicating those opportunities as well as their proposals to implement them to management.

• Monitor and analyze network traffic system logs and other data sources to identify potential security incidents.
• Investigate alerts and suspicious activity to determine if an incident has occurred.
• Contain affected systems and networks to prevent the incident from spreading.
• Implement temporary measures to mitigate the impact of the incident.
• Work with other teams such as IT and security operations to develop and implement a containment strategy.
• Review incident data to determine the root cause of the incident and identify recommendations for improvement.
• Document and report incidents to the incident response team and other relevant stakeholders.
• Develop and implement security plans policies and training to prepare the organization to respond efficiently and effectively to cyber threats.
• Ensure compliance to HIPAA SOX and PCI security requirements.
• Ensure that all applications and system related problems are resolved in a timely and efficient manner.
• Willingness to travel a must.
• Maintain awareness of the rapidly changing Concentra environment and recommend cost efficient techniques when supporting corporate and field systems.
• Support the mission of and direction of Concentra Information Services both within the department and throughout the corporation.
• Completion of any activities tasks and projects as defined.
• Ensure all changes comply with the Change Management policies and procedures.
• Assist with change and problem management activities to ensure that information security concerns are incorporated into information technology development efforts.
• Aide in User Access Request process for projects including application rollouts acquisitions joint ventures and other business expansions.

• Education Level: Bachelors Degree ; Major: Business Systems Computer Science Security Risk Analysis Cybersecurity
• Experience in lieu of required education is acceptable
• 3 years of systems or other professional experience
• Excellent attention to detail
• Large-scale multi-site IS operations experience
• PC Hardware and peripheral experience
• Knowledge of Microsoft productivity applications
• Knowledge of browser-based technology
• Understanding of operating systems such as Windows and OS X/iOS
• Strong understanding of HIPAA Data Privacy SOX and PCI Security Regulations a plus
• Understanding of applicable control frameworks including NIST RMF/CSF and Mitre Att&ck a plus
  Experience with security administration and network monitoring tools
• Understanding of Essential Security Business Practices
• Experience with managing personal and enterprise firewalls a plus
• Excellent report writing skills a plus
• Healthcare experience a plus
• Experience with common technologies such as SIEM (ex. Splunk Elastic Sumo Logic) EDR (CrowdStrike Cortex XDR SentinelOne) DLP (ex. Digital Guardian Forcepoint MS Purview) and Email Security (ex. Proofpoint Cofense Rapid7) Cloud (Ex. AWS Azure GCP OCI). These are examples and experience in all listed solutions are not required.

Job-Related Skills / Competencies

• Proven experience making impactful contributions to successful projects
• Requires superior teamwork skills
• Strong interpersonal and communication skills a must; ability to read write and speak in a professional manner
• Excellent analytical and problem-solving skills are essential
• Must possess a personal sense of urgency
• Ability to effectively multi-task and adapt to changing business priorities
• Superior customer service skills
• Excellent time management and organizational skills are required
• Excellent attention to detail

Employee Benefits

• 401(k) Retirement Plan with Employer Match
• Medical Vision Prescription Telehealth & Dental Plans
• Life & Disability Insurance
• Paid Time Off
• Colleague Referral Bonus Program
• Tuition Reimbursement
• Commuter Benefits
• Dependent Care Spending Account
• Employee Discounts

We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process to perform essential job functions and to receive other benefits and privileges of employment. Please contact us to request accommodation if required.

*This job requires access to confidential and sensitive information requiring ongoing discretion and secure information management*

Concentra is an Equal Opportunity Employerincluding disability/veterans